CLD-106 Details

Other IDs this deficiency may be known by:

CVE ID CVE-2017-12179 (nvd) (mitre) (debian) (archlinux) (red hat) (suse) (ubuntu)
Other ID(s)

Basic Information:

Affected Package(s) xorg-server
Deficiency Type SECURITY
Date Created 2017-10-19 11:03:39
Date Last Modified 2017-10-19 11:49:30

Version Specific Information:

Cucumber 1.0 i686 fixed in xorg-server-1.18.1-i686-5
Cucumber 1.0 x86_64 fixed in xorg-server-1.18.1-x86_64-5

Cucumber 1.1 i686 fixed in xorg-server-1.18.1-i686-5
Cucumber 1.1 x86_64 fixed in xorg-server-1.18.1-x86_64-5

Details:

This has been fixed by the Xorg developers in commit
c77cd08efcf386bcc5d8dfbd0427134b2b2d0888
(https://cgit.freedesktop.org/xorg/xserver/commit/?h=server-1.19-branch&id=c77cd08efcf386bcc5d8dfbd0427134b2b2d0888).

This has been fixed in Cucumber Linux by the patches
http://mirror.cucumberlinux.com/cucumber/cucumber-1.0/source/x-base/xorg-server/patches/CVE-2017-12179-p1_211e05ac85a294ef361b9f80d689047fa52b9076.patch
and
http://mirror.cucumberlinux.com/cucumber/cucumber-1.0/source/x-base/xorg-server/patches/CVE-2017-12179-p2_d088e3c1286b548a58e62afdc70bb40981cdb9e8.patch
These patches were taken from the Slackware 14.2 patch tree
(https://mirrors.slackware.com/slackware/slackware-14.2/patches/source/xorg-server/patch/xorg-server/).